cxf-commits mailing list archives

Repository: cxf
Updated Branches:
refs/heads/3.1.x-fixes df424f5a4 -> c0512011c
[CXF-6692] Comment updates
Project: http://git-wip-us.apache.org/repos/asf/cxf/repo
Commit: http://git-wip-us.apache.org/repos/asf/cxf/commit/c0512011
Tree: http://git-wip-us.apache.org/repos/asf/cxf/tree/c0512011
Diff: http://git-wip-us.apache.org/repos/asf/cxf/diff/c0512011
Branch: refs/heads/3.1.x-fixes
Commit: c0512011caf15c9e89e1c8cbf00cc2abd099eab2
Parents: df424f5
Author: Sergey Beryozkin <sberyozkin@gmail.com>
Authored: Thu Aug 11 13:11:01 2016 +0100
Committer: Sergey Beryozkin <sberyozkin@gmail.com>
Committed: Thu Aug 11 13:18:15 2016 +0100
----------------------------------------------------------------------
.../oauth2/provider/AbstractOAuthDataProvider.java | 12 +-----------
1 file changed, 1 insertion(+), 11 deletions(-)
----------------------------------------------------------------------
http://git-wip-us.apache.org/repos/asf/cxf/blob/c0512011/rt/rs/security/oauth-parent/oauth2/src/main/java/org/apache/cxf/rs/security/oauth2/provider/AbstractOAuthDataProvider.java
----------------------------------------------------------------------
diff --git a/rt/rs/security/oauth-parent/oauth2/src/main/java/org/apache/cxf/rs/security/oauth2/provider/AbstractOAuthDataProvider.java
b/rt/rs/security/oauth-parent/oauth2/src/main/java/org/apache/cxf/rs/security/oauth2/provider/AbstractOAuthDataProvider.java
index 4d2ede4..30acde8 100644
--- a/rt/rs/security/oauth-parent/oauth2/src/main/java/org/apache/cxf/rs/security/oauth2/provider/AbstractOAuthDataProvider.java
+++ b/rt/rs/security/oauth-parent/oauth2/src/main/java/org/apache/cxf/rs/security/oauth2/provider/AbstractOAuthDataProvider.java
@@ -140,17 +140,7 @@ public abstract class AbstractOAuthDataProvider implements OAuthDataProvider,
Cl
}
// ServerAccessToken 'nonce' property, if available, can be ignored for the purpose
for persisting it
// further as a JWT claim - as it is only used once by (OIDC) IdTokenResponseFilter
- // to set IdToken nonce property with the filter havinh an access to the current
ServerAccessToken instance
-
- //TODO: consider auto-setting all the remaining token properties as claims either
optionally
- // or if JWE encryption is enabled for the providers be able to choose if they
- // want to save JOSE token representations only - though the providers can always
override
- // this method too and set the extra claims. If all ServerAccessToken properties
are set as claims
- // then the providers will only have to save ServerAccessToken.getTokenKey() in
- // saveAccessToken(ServerAccessToken) which will be a JOSE representation of a given
ServerAccessToken
- // instance but will have to restore ServerAccessToken from it when the runtime requests
ServerAccessToken
- // for the validation purposes.
-
+ // to set IdToken nonce property with the filter having an access to the current
ServerAccessToken instance
return claims;
}